CISCO- 1261 

AMENDMENTS TO THE CLAIMS: 

The following listing of claims will replace all prior versions of claims in the application: 

1. (Currently Amended) An apparatus for controlling operations by a client on a stored 
file stored on a network device , said apparatus comprising: 

a first memory associated with the file, said first memory for storing a fixed file security 
status, said fixed file security status being either of a first type or of a second type, wherein said 
first type indicates that operations are not allowed on the file and said second type indicates that 
operations are allowed on the file : 

a second memory associated with the file, said second memory for storing an active file 
security status, said active file security status being either of said first type or of said second type 
and changeable from said first type to said second type initially copi e d from said fix e d fil e 
s e curity status and initially b e ing of said first t>p e and chang e abl e to a s e cond typ e; 

a requ e st handl e r r e c e iving a r e qu e st from th e client to p e rform op e rations on the fil e , 
said r e quest handl e r disallowing th e cU e nt from p e rforming operations on the file if said activ e 
fil e s e curity status is of said first type and allowing th e cli e nt to perform op e rations on the fil e if 
said activ e fil e s e curity status is of said s e cond type; and 

an independent verification routine having access to a security database listing clients and 
corresponding privileges, and routin e is capabl e of r e c e iving an authorization credential from th e 
client, said ind e p e ndent verification routin e causing said activ e fil e s e curity status to chang e to 
said s e cond type if said authorization cr e d e ntial indicat e s that th e client has th e privil e g e to 
acc e ss th e fil e wherein said independent verification roiitine is enabled: 

to determine whether the cUent has privilege to perform operations on the file 

based at least in part on an authorization credential from the client and 

to generate either a positive or a negative determination upon request; 
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and 

a request handler in communication with said first memory, said second memory, and 
said independent verification routine, wherein said request handler is enabled: 
to receive a request from the client to open the file; 
to transmit a file descriptor to the client: 

to copy said fixed file security status firom said first memory to said second 
memory as said active file security status: 

to determine whether said active file security status is of said first type or of said 
second type: 

when said active file security status is determined to be of said second type: 
to receive a request from the client to perform an operation on the file: 
to determine that said active file security status is of said second type: and 
to perform the operation requested by the client on the file: 

and 

when said active file security status is determined to be of said first type: 
to receive said authorization credential from the client: 
to pass said authorization credential to said independent verification 

routine: 

to receive a positive determination from said independent verification 
routine that the client has privilege to perform operations on the file: 

to change said active file security status from said first type to said second 

t y pe ; 

to receive a request from the client to perform an operation on the file: 

to determine that said active file security status is of said second type: and 
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to perform the operation requested by the client on the file . 



2. (Previously Presented) The apparatus of claim 1, further comprising a third memory 
associated with the file, said third memory for storing a delete-on-close status, said delete-on- 
close status initially set to a first value and changeable to a second value, 

wherein said first value indicates that the file will not be deleted upon closing and the 
second value indicates that the file will be deleted upon closing. 

3. (Original) The apparatus of claim 2, wherein said first memory is a non-volatile 
random-access memory and said second memory and third memory are in a file entry. 

4. (Original) The apparatus of claim 3, wherein said first memory, said second memory, 
and said third memory comprise single bits. 

5-26. (Canceled) 

27. (New) A method for controlling operations by a client on a file stored on a network 

device having a first memory associated with the file and a second memory associated with the 

file, wherein the first memory stores a fixed file security status being either of a first type or of a 

second type and the second memory stores an active file security status being either of the first 

type or of the second type and changeable from the first type to the second type and wherein the 

first type indicates that operations are not allowed on the file and the second type indicates that 

operations are allowed on the file, the method comprising: 

receiving a request from the client to open the file; 

Page 4 of 15 



CISCO-1261 

transmitting a file descriptor to the client; 

copying the fixed file security status firom the first memory to the second memory as the 
active file security status; 

determining whether the active file security status is of the first type or of the second 

type; 

when the active file security status is determined to be of the second type: 

receiving a request fi^om the client to perform an operation on the file; 
determining that the active file security status is of the second type; and 
performing the operation requested by the client on the file; 

and 

when the active file security status is determined to be of the first type: 
receiving an authorization credential fi-om the client; 

passing the authorization credential to an independent verification routine that 
determines whether the client has privilege to perform operations on the file; 

receiving a positive determination fi-om the independent verification routine that 
the client has privilege to perform operations on the file; 

changing the active file security status from the first type to the second type; 

receiving a request from the client to perform an operation on the file; 

determining that the active file security status is of the second type; and 

performing the operation requested by the client on the file. 



28. (New) The method as defined in claim 27, wherein when the active file security 
status is determined to be of the first type and before changing the active file security status, the 
method fiirther comprises: 
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receiving a request from the client to perform an operation on the file; and 
retuming an error message to the client indicating a refiisal to perform the operation 
requested by the client on the file. 

29. (New) The method as defined in claim 27, wherein when the active file security 
status is determined to be of the first type and after passing the authorization credential, the 
method fiirther comprises: 

receiving a negative determination from the independent verification routine that the 

client has no privilege to perform operations on the file; 

receiving a request from the client to perform an operation on the file; and 
retuming an error message to the client indicating a refixsal to perform the operation 

requested by the client on the file. 

30. (New) An apparatus for controlling operations by a client on a file stored on a 
network device having a first memory associated with the file and a second memory associated 
with the file, wherein the first memory stores a fixed file security status being either of a first 
type or of a second type and the second memory stores an active file security status being either 
of the first type or of the second type and changeable from the first type to the second type and 
wherein the first type indicates that operations are not allowed on the file and the second type 
indicates that operations are allowed on the file, the apparatus comprising: 

means for receiving a request from the client to open the file; 
means for transmitting a file descriptor to the client; 

means for copying the fixed file security status from the first memory to the second 
memory as the active file security status; 
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means for determining whether the active file security status is of the first type or of the 
second type; 

when the active file security status is determined to be of the second type: 

means for receiving a request fi-om the client to perform an operation on the file; 
means for determining that the active file security status is of the second type; and 
means for performing the operation requested by the client on the file; 

and 

when the active file security status is determined to be of the first type: 

means for receiving an authorization credential firom the cUent; 

means for passing the authorization credential to an independent verification 
routine that determines whether the client has privilege to perform operations on the file; 

means for receiving a positive determination fi-om the independent verification 
routine that the client has privilege to perform operations on the file; 

means for changing the active file security status firom the first type to the second 

type; 

means for receiving a request firom the client to perform an operation on the file; 
means for determining that the active file security status is of the second type; and 
means for performing the operation requested by the client on the file. 

3 1 . (New) The apparatus as defined in claim 30, wherein when the active file security 
status is determined to be of the first type and before the active file security status has been 
changed, the apparatus fiirther comprises: 

means for receiving a request fi-om the client to perform an operation on the file; and 
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means for returning an error message to the client indicating a refusal to perform the 
operation requested by the client on the file. 

32. (New) The apparatus as defined in claim 30, wherein when the active file security 
status is determined to be of the first type and after the authorization credential has been passed, 
the apparatus further comprises: 

means for receiving a negative determination from the independent verification routine 

that the client has no privilege to perform operations on the file; 

means for receiving a request from the client to perform an operation on the file; and 
means for returning an error message to the client indicating a refusal to perform the 

operation requested by the client on the file. 

33. (New) A computer-readable medium having stored thereon computer-executable 
instructions for performing a method for controlling operations by a cUent on a file stored on a 
network device having a first memory associated with the file and a second memory associated 
with the file, wherein the first memory stores a fixed file security status being either of a first 
type or of a second type and the second memory stores an active file security status being either 
of the first type or of the second type and changeable fi-om the first type to the second type and 
wherein the first type indicates that operations are not allowed on the file and the second type 
indicates that operations are allowed on the file, the method comprising: 

receiving a request fi-om the client to open the file; 
transmitting a file descriptor to the client; 

copying the fixed file security status fi-om the first memory to the second memory as the 
active file security status; 
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determining whether the active file security status is of the first type or of the second 

type; 

when the active file security status is determined to be of the second type: 

receiving a request from the client to perform an operation on the file; 
determining that the active file security status is of the second type; and 
performing the operation requested by the cHent on the file; 

and 

when the active file security status is determined to be of the first type: 
receiving an authorization credential from the client; 

passing the authorization credential to an independent verification routine that 
determines whether the client has privilege to perform operations on the file; 

receiving a positive determination from the independent verification routine that 
the client has privilege to perform operations on the file; 

changing the active file security status from the first type to the second type; 

receiving a request from the client to perform an operation on the file; 

determining that the active file security status is of the second type; and 

performing the operation requested by the client on the file. 

34. (New) The computer-readable medium as defined in claim 33, wherein when the 
active file security status is determined to be of the first type and before changing the active file 
security status, the method further comprises: 

receiving a request from the client to perform an operation on the file; and 
retuming an error message to the client indicating a refusal to perform the operation 
requested by the client on the file. 
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35. (New) The computer-readable medium as defined in claim 33, wherein when the 
active file security status is determined to be of the first type and after passing the authorization 
credential, the method fiirther comprises: 

receiving a negative determination from the independent verification routine that the 
client has no privilege to perform operations on the file; 

receiving a request from the client to perform an operation on the file; and 

returning an error message to the client indicating a refiisal to perform the operation 
requested by the client on the file. 
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